Showing 1 - 3 of 3

Files from Sivanesh Ashok

Bolt CMS 3.7.0 XSS / CSRF / Shell Upload: Posted Jul 3, 2020; Authored by Sivanesh Ashok; Bolt CMS versions 3.7.0 and below suffer from cross site request forgery, cross site scripting, and remote shell upload vulnerabilities that when combined can achieve remote code execution in one click.; tags | exploit, remote, shell, vulnerability, code execution, xss, csrf; advisories | CVE-2020-4040, CVE-2020-4041; MD5 | e1905dcd1353235ff99a9faf7ed545ef; Download | Favorite | View

Bolt CMS 3.7.0 Authenticated Remote Code Execution: Posted Jun 29, 2020; Authored by r3m0t3nu11, Erik Wynter, Sivanesh Ashok | Site metasploit.com; This Metasploit module exploits multiple vulnerabilities in Bolt CMS version 3.7.0 and 3.6.x in order to execute arbitrary commands as the user running Bolt. Valid credentials for a Bolt CMS user are required. This module has been successfully tested against Bolt CMS 3.7.0 running on CentOS 7.; tags | exploit, arbitrary, vulnerability; systems | linux, centos; MD5 | 0e1891b316c1ddb10007d34437171dba; Download | Favorite | View

Prestashop 1.7.6.4 XSS / CSRF / Remote Code Execution: Posted Apr 17, 2020; Authored by Sivanesh Ashok; Prestashop versions 1.7.6.4 and below suffer from code execution, cross site request forgery, and cross site scripting vulnerabilities.; tags | exploit, vulnerability, code execution, xss, csrf; MD5 | e88f3fb2cabe4dd5fc52ac8955ab17bb; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days